Skip to content
Permalink
Browse files Browse the repository at this point in the history
Remove 'raw' to fix XSS
  • Loading branch information
jschwindt committed Oct 30, 2022
1 parent 1516ff9 commit 62339b2
Show file tree
Hide file tree
Showing 5 changed files with 9 additions and 8 deletions.
1 change: 1 addition & 0 deletions .nvmrc
@@ -0,0 +1 @@
v12.22.10
4 changes: 2 additions & 2 deletions app/views/posts/archive.html.erb
Expand Up @@ -8,11 +8,11 @@
<% if params[:page].nil? %>
<% the_title = title_part %>
<% else %>
<% the_title = "#{title_part}, <small>Página #{params[:page]}</small>" %>
<% the_title = "#{title_part} (página #{params[:page]})" -%>
<% end %>
<% page_title the_title %>
<% meta_description strip_tags("#{the_title} de La Venganza será Terrible") %>
<h2 class="title fancy is-4"><%= raw the_title %></h2>
<h2 class="title fancy is-4"><%= the_title %></h2>
<%= render 'layouts/banners/top' %>
<%= render @posts %>
<%= paginate @posts, window: 2 %>
4 changes: 2 additions & 2 deletions app/views/posts/contributions.html.erb
@@ -1,11 +1,11 @@
<% if params[:page].nil? %>
<% the_title = "Contribuciones de Programas de La Venganza será Terrible" -%>
<% else %>
<% the_title = "Contribuciones de Programas de La Venganza será Terrible, <small>Página #{params[:page]}</small>" -%>
<% the_title = "Contribuciones de Programas de La Venganza será Terrible (página #{params[:page]})" -%>
<% end %>
<% page_title the_title -%>
<% meta_description strip_tags(the_title) -%>
<h2 class="title fancy is-4"><%= raw the_title %></h2>
<h2 class="title fancy is-4"><%= the_title %></h2>
<%= render 'layouts/banners/top' %>
<%= render @posts %>
<%= paginate @posts, window: 2 %>
4 changes: 2 additions & 2 deletions app/views/posts/index.html.erb
@@ -1,11 +1,11 @@
<% if params[:page].present? %>
<% the_title = "Programas de La Venganza será Terrible de Alejandro Dolina, <small>Página #{params[:page]}</small>" -%>
<% the_title = "Programas de La Venganza será Terrible de Alejandro Dolina (página #{params[:page]})" -%>
<% else %>
<% the_title = "Programas de La Venganza será Terrible de Alejandro Dolina" -%>
<% end %>
<% page_title the_title -%>
<% meta_description strip_tags(the_title) -%>
<h2 class="title fancy is-4"><%= raw the_title %></h2>
<h2 class="title fancy is-4"><%= the_title %></h2>
<%= render 'layouts/banners/top' %>
<%= render @posts %>
<%= paginate @posts, window: 2 %>
4 changes: 2 additions & 2 deletions app/views/torrents/index.html.erb
@@ -1,12 +1,12 @@
<% if params[:page].nil? %>
<% the_title = "Torrents de La Venganza será Terrible de Alejandro Dolina" -%>
<% else %>
<% the_title = "Torrents de La Venganza será Terrible de Alejandro Dolina<small>, Página #{params[:page]}</small>" -%>
<% the_title = "Torrents de La Venganza será Terrible de Alejandro Dolina (página #{params[:page]})" -%>
<% end %>
<% page_title the_title -%>
<% meta_description strip_tags(the_title) -%>
<h2 class="title fancy is-4">Descarga de los MP3 usando torrent</h2>
<h2 class="title"><%=raw the_title %></h2>
<h2 class="title"><%= the_title %></h2>
<div class="content">
Si estás usando el RSS de los torrents para agregarlo a tu cliente
BitTorrent favorito y automatizar las descargas,
Expand Down

0 comments on commit 62339b2

Please sign in to comment.